Guest VLAN issues with externel services that we offer

Here's what we need to accomplish:

We have subnets on our networks that need to use our external DNS server (they are Guest VLANs for our WiFi networks). This traffic is visible by our paloalto firewall with layer 3 adresses (10.XXX.30.0/23). When we

Inline PA vwire on inside interface of Cisco ASA HA/pair inline

I am currently running a pair of Cisco ASA 5520 in HA.   I want to protect the traffic going inside with an inline wire on the inside interface of Cisco ASA HA/pair as it travels to the LAN.  A pair PA-2020 are configured in Active/Standby with the w

Global Nat

How can you determnine what the global nat address is on a firewall?

Wire shark

I am trying to troubleshoot why I am having issues with a certain VPN router device through the PA 3020 firewall, This is the message on the packet capture

ISAKMP Identity protection (main mode).

I am new to firewall and if there are any other troubles

Ping

Can you send ping test from the PA and if so how is that done?

Stability Issues with 6.01

Hello,

since our pa 3050 (HA Active/Passive)  is running 6.01 i discovered some issues: The device server sometimes hangs, there is no other option than restarting it (debug software restart device-server) This happens approximately once a day. In thi

Does v5 or v6 User ID supports Windows 2012 R2 AD

Dear All

Does anyone knows PAN User-ID supports Windows Server 2012 R2 authentication or not?? I cannot find any information from the KB or document about windows 2012 version.

Cheers,

Carsen

Global Protect Active Session Limit Per Account

I am being told that there is no way to limit the number of sessions a single account can have simultaneously open in Global protect.  As a result we are looking for a way to possibly limit those sessions via a cron script?  Does anyone have any poss

Is it possible for a web page to discover if SSL decryption is active?

DUPLICATE POST - please see Decryption: sec_error_reused_issuer_and_serial for further info.

----

Hi folks,

We recently re-activated SSL decryption in some of our branch offices. Now of course reports are coming in that certain web pages can't be displa

Panorama M-100 GUI timeout

I have a problem with a Panorama M-100 running 5.1.4, where sessions in the web-gui seems to time out before they have reached the "idle timeout" configured under Panorama/Setup/Management/Authentication Settings.

What happens is that after being ina

Global Protect Radius Child Domains

Global Protect using Radius works perfect for users in the parent domain. It will not work for users in child domains.

I worked with Palo Support for several hours and they believe the issue is a setting on the Radius server but they do not know what